For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

mbjelo's avatar
mbjelo
Icon for Nimbostratus rankNimbostratus
Jun 17, 2019

wildcard entity enforcement

Hi all,   I have my ASM policy set with selective learning for URLs. At enforce readiness page I have suggestedd URLs to add as explicit entities which I understand why they are there. But I also ...
ASM Advanced WAF
security
Nathan_F__F5_'s avatar
Nathan_F__F5_
Icon for Employee rankEmployee
Jun 18, 2019

Hi Milovan,

 

It looks like your wildcard URLs are in staging which basically just means that when a URL matches the wildcard it can still learn from it but it won't block any traffic. If you were to enforce the wildcard then it would start blocking traffic when there are URLs that match the wildcard and the traffic triggers a violation. The following manual chapter speaks about this a little bit in the "Adjusting the enforcement readiness period" section.

 

https://techdocs.f5.com/kb/en-us/products/big-ip_asm/manuals/product/asm-implementations-13-1-0/31.html